RMail Email Security

Email Privacy & Compliance

SMARTR

Email Encryption

Dynamically adapting encrypted email ensures elegantly easy; simple for recipient means happy sender. Far beyond opportunistic TLS, RMail encrypted email service smartly adapts to provide peace-of-mind with end-to-end encryption, secure file sharing, auditable proof of fact of GDPR and HIPAA privacy compliance, email thread security monitoring, and more.

Why We Are Unique

Our features provide the best user experience. Our prices make us the most affordable. And our ser vices connect elegantly inside your existing email programs and business systems.

Breadth of Services

Human Error Prevention & DLP

Mutating the DNA of Data Leaks

Automatically sensitize users of their need to treat certain messages differently, seamlessly and in the flow of email and work, with in-the-moment-of-sending, bite sized insights and alerts. Empower your people and prevent data loss with AI-Infused and automated rules-based email compliance and security recommendations.

Targeted Attack Pre-emption

Intercepting the Human Instinct to Please Nip cybercriminal-induced mis-wires (a/k/a wire fraud) with real-time alerts that expose whose email account is being eavesdropped on, which email addresses have tricky lookalike domains, and when a reply is about to be hijacked--must-have additional layers for your Business Email Compromise defense. Outbound Pre-CrimeTM email security at its finest!

Certified Proof of Content Delivered

Proof of Who Said What When, by Email

Gain insights of the overall journey of your email, how popular who read what when, and receive forensic certified proof.

Outbound AI Security Stack

Perfect Harmony, Enhance the Outbound

Keep your existing inbound email security – and even your outbound DLP if you so choose. Add RMail outbound security gateway, in-the-inbox integrated cloud email security, and in-the-ether e-security content controls: all, some or one. RMail harmoniously extends your existing email security systems, adding elegantly-easy encryption user experiences, unique BEC targeted attack detection, and more, with AI DLP automation.

RMail empowers you; all of the functionality you need, all in one installation onto the platforms you’re already using -- email encr yption, cer tified proof, AI-infused human e-security error prevention, in-the moment personalized e-security training, and much more.

Simplicity

We understand that the power of e-security technology resides in user adoption. That is why RMail is built with AI that automatically sensitizes users to today’s e-security and e-compliance needs, subtly nudging them to make the right email-related e-security decisions. Securing your business has never been easier

Legal Proof®

Each message comes with a Registered Receipt™ email record; the global standard for cour t-accepted, timestamped proof of secure delivery of emails — and its attachments. This record is durable (it may be for warded, retaining its selfauthenticating integrity), and is selfcontained (it does not require any other record to be stored anywhere).

Friendlier Ser vice

Excellent technology is key, outstanding ser vice is gold. Getting both in a single package is pure bliss. Our teams are more knowledgeable and friendlier to work with. That is why our customers rate us with 99% satisfaction scores and 5-star accolades.

Thank you, to the more than 25 million people the world over, who have put their trust in our team and technology, since 2000

Outbound Security Stack

Email Security

RMail Security Flow

RMail Outbound Cloud Security Platform most often acts as an extension of one’s existing inbound email security filters and outbound DLP services, with specialized Email Eavesdropping™ protection, elegantly easy and automated email encryption, and more.

RMail services detect when a message should be sent encrypted and automatically transform it into a secure message that recipients can view with ease.

With Email Eavesdropping™ threat hunting, senders have peace-of-mind that they will be alerted in real time if a cybercriminal has compromised their recipient’s email inbox, which is often the main step in lures leading to mis-wires.

RMail then sends aggregate Email Eavesdropping™ red-alerts to administrators and, if desired, to their managed security service provider as well.

RMail automatically sensitizes users to the need to treat certain email with special care; and then transforms the message with specialized security in mind. This is true DLP in the desktop, no server settings or routings needed. For the sender, it’s just like sending any other email. For IT admins, it’s peace of mind with pure email security and compliance bliss.

Right Recipient™: Lookalike Domain™ Detector

Unverified Recipients

It looks like you do not normally send sensitive information to the addressed recipient(s). Please double check the recipient addresses to ensure your sensitive information is going to your intended recipient(s).

In this example, the cybercriminal has newly purchased a domain with one letter different -missing the “r” – to effectively hijack the reply and continue corresponding, posing as a long-time contact.

After an email is deemed important enough to send in a special RMail way, RMail presents the full email address of each recipient to make it easy for senders to re-verify that they are about to send the right message to the right recipient. And, if RMail identifies any cybercriminal trickery in the email addresses, such as clever domain misspells or tricky message header reply-to pivots, it instantly alerts the sender.

Right Recipient™: Reply Hijack™ Alerts

The lookalike reply domain is not visible to human eyes until after the sender clicks reply, at which time it is very difficult for the sender to spot.

This feature will alert senders after the hook is in, before the steal, in-the-moment of replying or forwarding a message, if RMail detects a message will pivot from the intended recipient.

This method, combined with the utilization of impostor domains, is one of the most common ways in which cybercriminals hijack a thread, and one of the first steps towards wire fraud.

Security at the Recipient

You have received an encrypted email from David Sanders. click here to reply to this message encrypted.

Transmission Preferred Encryption: RMail’s default settings first attempt transmission level encryption at the minimum sender-acceptable security level, and deliver the encrypted email right to the recipient’s inbox, providing the same familiar user experience as without any logins, links or need to create an account. Recipients even have the option to

The banner adds confidence for the receiver that the information was shared securely Familiar user experience No logins, links or need to create an account

Security at the Recipient

Message Level Encryption

RMail dynamic encryption engine detects whether the recipient’s server is able to receive the email at the minimum sender-acceptable security level and, if not, automatically reverts to message level encryption, wrapping the email and any attachments inside an AES-256-bit encrypted PDF package, delivered into the recipient’s inbox, with automated decryption password management.

Benefits:

Message and attachments remain encrypted at rest in the recipient’s inbox

• Familiar and easy PDF user experience for reader

• The email opens in any browser or PDF reader

• Digitally signed, integrity visible in the PDF reader

• Recipient can access the attachments in any browser with a simple click, or directly in their PDF reader

Security at the Recipient

Secure Large File Share™ Send Up to 1GB from within Outlook

Senders can easily attach and track up to 1GB of files right from inside the Outlook compose window -- or any of the RMail web applications. Senders can send large files securely to any recipient with encryption and configurable self-purging options (from 1 to 90 days) through a secure web container that eliminates the risk of download recipients being able to see sender's cloud storage file structure. Plus, files auto-purge after 1 to 90 days (configurable) and can be killed early at any time by the sender. No files linger on the Internet – pure compliance bliss.

Digital Seal®: Authenticate True Email Content & Sender

RMail Digital Seal® authentication makes it easy for a recipient to verify origin and authorship of an email (for example, an email carrying an invoice) and re-create a copy of the original message content instantly. This empowers the recipient of the invoice to verify authenticity of payment information in real-time, anytime, before paying.

Senders are now empowered to ensure that certain content of an email – like payment details, negotiated terms, or other sensitive content – is redacted from the message body. It protects the sender by automatically cleansing the email thread of sensitive content while at the recipient regardless of how a recipient replies or who they forward the message to.

In the normal process of sending an email, RMail AI detects whether it may be useful for senders to add contextual SideNote® message visible only to selected recipients. When used in combination with Disappearing Ink™, that note can be set to disappear after read, without any trace.

Senders can redact addresses in the To/Cc fields, such that recipients in Bcc can see who was copied but cannot inadvertently reply to all, exposing that they were blind copied.

Benefits:

• The Registered Receipt™ is the only evidence that needs to be stored to reconstruct the original transmission

• Self-authenticates without the need for third-party storage

• Reconstructs the entire transaction in native format, including content and attachments

• Can be forwarded for recipients to authenticate

The Power of Proof™:

The Registered Receipt™ email record is a durable, self-contained, and self-authenticating proof record of the entire email transaction, returned to the sender for each Registered Email™ sent. The Registered Receipt™ authenticates and accurately reproduces the original email including attachments, without RMail or any third party storing a copy of the email, attachments or records.

HTML file reconstructs the transaction, is durable and self-contained.

Message status and metadata of the transaction is contained in XML format or can be extracted via API.

Legal delivery time, synched to the Government Atomic Time

Legal delivery status

Legal time of sending

Record of encrypted transmission

Record and identifiers for proof of attachment content

Legal forensic metadata

Authentication Record: Authentication Record: When a Registered Receipt™ email record is submitted to RMail, our systems authenticate the receipt's integrity and, if authentic, reconstruct the original message content along with forensic evidentiary transaction data.

The Receipt Authentication record reconstructs the original transaction without any storage anywhere except the Registered Receipt itself. And, if the original email was sent encrypted, the reconstructed message content also proves fact of encrypted delivery.

The Receipt Authentication record includes SMTP logs, SMTP history, HTTP records and DSN records.

The Authentication record reconstructs original email, including email content and attachments.

Email Security

Email Lifecycle & Popularity Report

Active Tracker™ Intelligence Email Activity Report

Original Recipient: jim@insurancegrp.com

Security: Green

Senders can now gain insights into the popularity of their email and the amazing journey their message takes as it is forwarded along.

Transaction

Metadata:

[IP Address: 41.67.191.255] [Time Opened: 09/15/2022 08:12:48 AM] [REMOTE_HOST: 192.168.10.153] [HTTP_HOST: open.r1.rpost.net] [SCRIPT_NAME: /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif] HTTP_ACCEPT:*/* HTTP_ACCEPT_ENCODING:gzip, deflate HTTP_HOST:open.r1.rpost.net

HTTP_USER_AGENT:Mozilla/4.0 (compatible; ms-office; MSOffice 16)

HTTP_X_FORWARDED_FOR:183.82.2.55

HTTP_X_FORWARDED_PROTO:https HTTP_X_FORWARDED_PORT:443

HTTP_UA_CPU:AMD64 Accept: */* Accept-Encoding: gzip, deflate Host: open.r1.rpost.net User-Agent: Mozilla/4.0 (compatible; ms-office; MSOffice 16) X-Forwarded-For: 183.82.2.55 X-Forwarded-Proto: https X-Forwarded-Port: 443 X-Amzn-Trace-Id: Root=1-632d2601-68f7d3e527e10ac35f151b35 ua-cpu: AMD64 /LM/W3SVC/5/ROOT 256 2048

HTTP_X_AMZN_TRACE_ID:Root=1-632d2601-68f7d3e527e10ac35f151b35

C=US, S=VA, L=Herndon, O=Network Solutions L.L.C., CN=Network Solutions DV Server CA 2 CN=tracking.rpost.com 0 CGI/1.1 on 256 2048 C=US, S=VA, L=Herndon, O=Network Solutions L.L.C., CN=Network Solutions DV Server CA 2 CN=tracking.rpost.com 5 /LM/W3SVC/5 192.168.10.186 /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif 192.168.10.153 192.168.10.153 46808 GET /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif open.r1.rpost.net 443 1 HTTP/1.1 Microsoft-IIS/8.5 /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif */* gzip, deflate open.r1.rpost.net Mozilla/4.0 (compatible; ms-office; MSOffice 16) 183.82.2.55 https 443 Root=1-632d2601-68f7d3e527e10ac35f151b35 AMD64

RPost patented (rpost.com/patents) including US patent applications

(M) = activity determined to be on a mobile device.

(VPN) = activity was detected at an anonymizing VPN endpoint location

Location = registered location of the detected network.

RPost patented (rpost.com/patents) including US patent applications 17304,305, 15469388, 17025955, 17659479, 16866135, 17653923, 17663425, 63/201,857, 63/366,685, 63/366,661 and other applications.

and other applications.

Email Security

Email Eavesdropping™ Alerts for Wire-Fraud Pre-Emption

Email Activity Report

Original Recipient: David.Smith@northwestinsurance.com

Security: Red

Opens: 3

Email Eavesdropping™ Alert

If the RMail active threat hunting technology identifies unusual activity patterns, RMail generates an Email Eavesdropping™ instant alert, and notifies in real-time IT admins (and optionally senders) with forensic details.

Pre-empt cybercrime. After the hook is in, before the steal.

BEC lures start with cybercriminals targeting their victims by eavesdropping on email from sender to recipient, to siphon off email, analyze it, copy it with slight modifications (e.g., payment instructions), and then pivot replies so they route in a loop back to the cybercriminal.

Metadata:

[IP Address: 41.67.191.255] [Time Opened: 09/15/2022 08:12:48 AM] [REMOTE_HOST: 192.168.10.153] [HTTP_HOST: open.r1.rpost.net] [SCRIPT_NAME: /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif] HTTP_ACCEPT:*/* HTTP_ACCEPT_ENCODING:gzip, deflate

HTTP_HOST:open.r1.rpost.net

HTTP_USER_AGENT:Mozilla/4.0 (compatible; ms-office; MSOffice 16) HTTP_X_FORWARDED_FOR:183.82.2.55 HTTP_X_FORWARDED_PROTO:https HTTP_X_FORWARDED_PORT:443

HTTP_X_AMZN_TRACE_ID:Root=1-632d2601-68f7d3e527e10ac35f151b35 HTTP_UA_CPU:AMD64 Accept: */* Accept-Encoding: gzip, deflate Host: open.r1.rpost.net User-Agent: Mozilla/4.0 (compatible; ms-office; MSOffice 16) X-Forwarded-For: 183.82.2.55 X-Forwarded-Proto: https X-Forwarded-Port: 443 X-Amzn-Trace-Id: Root=1-632d2601-68f7d3e527e10ac35f151b35 ua-cpu:

AMD64 /LM/W3SVC/5/ROOT 256 2048 C=US, S=VA, L=Herndon, O=Network Solutions L.L.C., CN=Network Solutions DV Server CA 2 CN=tracking.rpost.com 0 CGI/1.1 on 256 2048 C=US, S=VA, L=Herndon, O=Network Solutions L.L.C., CN=Network Solutions DV Server CA 2 CN=tracking.rpost.com 5 /LM/W3SVC/5 192.168.10.186 /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif 192.168.10.153 192.168.10.153 46808 GET /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif open.r1.rpost.net 443 1 HTTP/1.1 Microsoft-IIS/8.5 /open/images/LGy25hw0Z65CNLyOLYzCLCuMKdk95gm4vir26bBCMDIx.gif */* gzip, deflate open.r1.rpost.net Mozilla/4.0 (compatible; ms-office; MSOffice 16) 183.82.2.55 https 443 Root=1-632d2601-68f7d3e527e10ac35f151b35 AMD64

RPost patented (rpost.com/patents) including US patent applications 17663425, 63/201,857, 63/366,685, 63/366,661 and other applications.

(M) = activity determined to be on a mobile device.

(VPN) = activity was detected at an anonymizing VPN endpoint location Location = registered location of the detected network. Network = registered network associated with the internet protocol.

With Email Eavesdropping™ alerts, every email sent out of the organization has every activity associated with it analyzed forensically, for a period of time. These alerts include all the email forensics so that IT security specialists can validate and take immediate action, before the cybercriminal lures users into mis-wiring money to the criminal’s bank.

Email Security Security Breach Locator™ Report

ID: C8737FB9CF1519A2053C44E0056FDF5C39DDB645

MelanieJames <mjames@newinsurance.com>

Policy Updates

<wanda.mcgrath@holdingsusa.net>

If an email is identified as being eavesdropped on, the Registered Encryption™ report identifies the most likely security gaps; and/or provides audit-ready proof that the security gap must have been after the recipient forwarded the message onward --- and not a fault of the sender.

The security forensics provided by RMail are fact, and allow IT admins to easily justify and demonstrate their hypothesis about where cybercriminals may have accessed an email in the path from sender to recipient, even if the breach occurred at the recipient's end.

IT Admin Intelligence

Aggregate Eavesdropping Heartbeat™ Monitor

The Aggregate Eavesdropping Heartbeat™ Monitor offers a daily snapshot of eavesdropping risks for MSPs or IT admins. This aggregate report provides peace of mind by forensically monitoring the journey of all outbound messages to the recipient and beyond.

IT Admins or MSPs can swiftly investigate further if they see any high alerts or unusual activity across all users, all domains, and all companies that they manage or monitor security for.

Integrated Security

• Sender Auto-Training & Security Recommendations

• In-the-Inbox DLP

• Lookalike Domain™ Detection

• Reply Hijack™ Detection Outbound DLP Email Security

• Email Encryption Automation

• Email Eavesdropping Detection

• Email Tracking & Certification

EVIDENCE TO SENDER

• Email Eavesdropping™ Sender Alerts

• Active Tracker™ Email Journey Report

• Registered Receipt™ Certified Proof

• Email Open & Timestamp Tracking

MSP & IT ADMIN INSIGHTS/ALERTS

• Email Eavesdropping™ Admin Alerts

• Security Breach Locator Report

• Aggregate Eavesdropping Heartbeat™ Monitor

• Custom Security Analytics

SMARTR™ Encryption

Dynamic Transmission and Message Level Encryption

Digital Seal®

Email Authorship Verification

Protect-the-Thread™

Reply Content Redaction

Disappearing Ink™

Self-Purging Content

Perfect Harmony, Enhance the Outbound

Keep your existing inbound email security – and even your outbound DLP if you so choose. Add RMail outbound security gateway, in-the-inbox integrated cloud email security, and in-the-ether e-security content controls: all, some or one. RMail harmoniously extends your existing email security systems, adding elegantly-easy encryption user experiences, unique BEC targeted attack detection, and more, with AI DLP automation.